Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5446B802F33411EFB6C2A8A2762E951A.roa
File: 5446B802F33411EFB6C2A8A2762E951A.roa (raw, json)
Hash identifier: DZ6QxlRdd3uOTl7VSKuLBa4btxk1QGoqczfBOx1YX7g=
Subject key identifier: BD:2D:2D:8A:2F:01:14:E4:62:EA:75:FA:5C:0A:91:8B:E5:25:BE:D2
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 015D45
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5446B802F33411EFB6C2A8A2762E951A.roa
Signing time: Tue 25 Feb 2025 04:52:35 +0000
ROA not before: Tue 25 Feb 2025 04:52:31 +0000
ROA not after: Wed 26 Mar 2025 04:52:31 +0000
asID: 5065
IP address blocks: 154.94.34.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 89413 (0x15d45)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 25 04:52:31 2025 GMT
Not After : Mar 26 04:52:31 2025 GMT
Subject: CN=67bd4c93-5849
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:5a:8a:b6:21:1d:0a:0c:d0:b1:d4:b1:b4:8d:
95:c0:46:77:f9:d1:8f:cc:0b:17:d6:be:9d:b4:9a:
5f:24:c5:2d:bc:f1:39:d2:1f:21:13:9f:9e:12:d7:
5e:f6:20:33:d4:1d:34:63:d2:c3:18:45:7f:5d:79:
80:16:5a:02:cb:3c:9f:9a:a5:8c:36:94:53:30:61:
83:b1:86:0f:49:46:24:cf:79:e2:98:d8:54:6a:a3:
0b:07:d1:ef:0c:e5:4a:aa:d8:33:4d:bf:62:af:d6:
80:5e:97:ad:15:ae:6f:83:81:dd:e0:0f:4e:a5:8d:
4d:69:5f:35:fd:68:72:54:6a:ba:2c:ce:32:74:a1:
64:f8:b7:a3:82:b1:d0:5f:b6:43:54:24:79:52:e4:
20:5f:bd:db:32:a1:3b:a1:62:e4:69:41:0b:e2:95:
6e:91:31:24:47:59:e1:c9:9f:90:01:4c:fc:97:71:
71:10:1d:d8:8f:d3:88:cc:a9:a1:60:72:8d:0b:c1:
0f:f8:f4:c6:a1:79:df:eb:b1:bb:38:b3:d1:6e:a0:
ad:d0:40:e2:26:ca:4b:de:79:be:53:76:5d:d1:ca:
f8:4b:c6:6e:5c:66:63:d6:b4:5f:ef:e0:0d:a2:89:
f3:af:1a:6d:af:4d:be:f5:11:45:15:71:a1:4d:bd:
20:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:2D:2D:8A:2F:01:14:E4:62:EA:75:FA:5C:0A:91:8B:E5:25:BE:D2
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5446B802F33411EFB6C2A8A2762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.34.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:b7:31:ee:f7:19:e9:ac:e7:1c:0b:ed:b7:d3:a9:e4:5e:75:
a6:0e:86:f3:e1:67:af:c8:b7:b6:b7:5c:b1:03:58:bd:bd:6b:
af:cb:6e:ec:4f:f0:73:d2:b4:ee:7d:de:26:0c:66:a1:64:d3:
93:f1:7b:2f:31:17:45:40:96:ea:cb:fd:74:f9:9a:57:1e:eb:
2b:83:2c:35:ae:cf:9f:5b:0f:bf:ff:50:fd:94:37:19:a0:dd:
bb:fc:47:1a:99:aa:b2:9e:17:50:81:23:76:5c:1d:4d:fb:ea:
d0:1d:fc:e5:61:6c:e2:19:c6:15:29:75:51:eb:21:08:81:f5:
95:ed:fa:39:35:d3:8d:b7:7c:b8:73:f2:78:56:d9:fc:a0:2f:
30:f8:c2:ec:d9:c1:a3:f7:c6:66:fc:5e:c4:2d:92:dd:a6:1c:
65:71:f5:75:8e:c6:88:79:a0:4f:05:1b:25:3d:30:63:65:3a:
c1:e9:7c:68:ce:f0:d8:1f:aa:bf:e4:7b:7d:f3:4d:d1:ba:4a:
42:ed:bd:42:ed:20:a4:ac:61:74:12:07:70:03:b3:d7:4e:2d:
81:b2:51:45:86:05:ff:b8:56:c0:ca:89:e5:49:c8:93:96:37:
94:49:4e:bd:c3:05:43:f6:10:1d:e1:5a:9d:6e:04:26:56:9e:
df:e0:a9:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 06:38:39 2025 by rpki-client